CVE-2021-1300
published 2021-01-20CVE-2021-1300: Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more…
PriorityP267critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.13%
79.7th percentile
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_sd-wan_solution | — | — |
| cisco | sd-wan | — | — |
| cisco | sd-wan_firmware | — | — |
| cisco | sd-wan_firmware | — | — |
| cisco | sd-wan_firmware | — | — |
| cisco | sd-wan_firmware | — | — |
| ericsson | codechecker | >= 0 < 6.24.6 | 6.24.6 |
Detection & IOCsextracted from sources · hover to see the quote
- ·CVE-2021-1300 is a buffer overflow vulnerability in Cisco SD-WAN products (Bug IDs: CSCvi69895, CSCvt11525). The provided sources contain only high-level advisory text with no concrete IOCs, attack commands, signatures, or operational indicators published. ↗
- ·No workarounds are available per the vendor advisory; only software updates address these vulnerabilities. ↗
- ·CWE classifications are CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) and CWE-20 (Improper Input Validation), which may guide detection rule development targeting malformed/oversized input to SD-WAN interfaces. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
ghsa7.4HIGH
vendor_cisco9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco SD-WAN Buffer Overflow Vulnerabilities
vendor_cisco·2021-01-20·CVSS 9.8
CVE-2021-1300 [CRITICAL] CWE-119 Cisco SD-WAN Buffer Overflow Vulnerabilities
Cisco SD-WAN Buffer Overflow Vulnerabilities
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device.
For more information about these vulnerabilities, see the Details section of this advisory.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-bufovulns-B5NrSHbj
Cisco
Cisco SD-WAN Buffer Overflow Vulnerabilities
vendor_cisco·CVSS 3.0
CVE-2021-1300 Cisco SD-WAN Buffer Overflow Vulnerabilities
CVE-2021-1300: Cisco SD-WAN Buffer Overflow Vulnerabilities
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see the
CVSS: 3.0
CWE: CWE-119, CWE-20, CWE-119, CWE-20
Bug IDs: CSCvi69895, CSCvt11525, CSCvt11525, CSCvi69895
GHSA
CodeChecker open redirect when URL contains multiple slashes after the product name
ghsa·2025-03-03·CVSS 7.4
CVE-2025-1300 [HIGH] CWE-601 CodeChecker open redirect when URL contains multiple slashes after the product name
CodeChecker open redirect when URL contains multiple slashes after the product name
Summary
---
CodeChecker versions up to 6.24.5 contain an open redirect vulnerability due to missing protections against multiple slashes after the product name in the URL's path segment. This results in bypassing protections against CVE-2021-28861, leading to the same open redirect pathway.
Details
---
CodeChecker processes GET requests by first rewriting the path segment of the URL, and then passing the rewritten URL to the webserver framework.
When trimming the product name from the URL, no sanitization was performed on the remaining URL, which reintroduced the same issue as CVE-2021-28861, leading to the same open redirect pathway using URLs such as `/Default//attacker.com/%2f..`.
Impact
---
The vu
GHSA
GHSA-qcph-crvp-p38c: Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device
ghsa_unreviewed·2022-05-24
CVE-2021-1300 [CRITICAL] CWE-119 GHSA-qcph-crvp-p38c: Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Suricata
ET EXPLOIT Windows DNS Server RCE Attempt Inbound (CVE-2021-26897)
suricata·2021-03-30·CVSS 9.8
CVE-2021-26897 [CRITICAL] ET EXPLOIT Windows DNS Server RCE Attempt Inbound (CVE-2021-26897)
ET EXPLOIT Windows DNS Server RCE Attempt Inbound (CVE-2021-26897)
Rule: alert tcp any any -> $DNS_SERVERS 53 (msg:"ET EXPLOIT Windows DNS Server RCE Attempt Inbound (CVE-2021-26897)"; dsize:>1300; content:"|29 00|"; offset:2; depth:2; threshold:type limit, count 45, seconds 90, track by_src; reference:cve,2021-26897; classtype:attempted-admin; sid:2032348; rev:1; metadata:attack_target DNS_Server, created_at 2021_03_30, cve CVE_2021_26897, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2021_03_30;)
No public exploits indexed.
Talos
Vulnerability Spotlight: Unsafe deserialization vulnerabilities in CODESYS Development System
blogs_talos·2021-07-26·CVSS 7.8
[HIGH] Vulnerability Spotlight: Unsafe deserialization vulnerabilities in CODESYS Development System
Patrick DeSantis discovered these vulnerabilities. Blog by Jon Munshaw.
Cisco Talos recently discovered multiple vulnerabilities in the CODESYS Development System.
The CODESYS Development System is the IEC 61131-3 programming tool for industrial control and automation technology, available in 32- and 64-bit versions.
This software contains multiple unsafe deserialization vulnerabilities that could allow an attacker to execute arbitrary code on the victim machine. These issues exist across a variety of the software’s functions. For more information on these vulnerabilities, read their individual advisories below.
- TALOS-2021-1300 (CVE-2021-21863)
- TALOS-2021-1301 (CVE-2021-21864)
- TALOS-2021-1302 (CVE-2021-21865)
- TALOS-2021-1303 (CVE-2021-21866)
- TALOS-2021-1304 (CVE-2021-21867)
-
Talos
Vulnerability Spotlight: Unsafe deserialization vulnerabilities in CODESYS Development System
blogs_talos·2021-07-26·CVSS 7.8
[HIGH] Vulnerability Spotlight: Unsafe deserialization vulnerabilities in CODESYS Development System
## Vulnerability Spotlight: Unsafe deserialization vulnerabilities in CODESYS Development System
Patrick DeSantis discovered these vulnerabilities. Blog by Jon Munshaw.
Cisco Talos recently discovered multiple vulnerabilities in the CODESYS Development System.
The CODESYS Development System is the IEC 61131-3 programming tool for industrial control and automation technology, available in 32- and 64-bit versions.
This software contains multiple unsafe deserialization vulnerabilities that could allow an attacker to execute arbitrary code on the victim machine. These issues exist across a variety of the software’s functions. For more information on these vulnerabilities, read their individual advisories below.
TALOS-2021-1300 (CVE-2021-21863)
TALOS-2021-1301 (CVE-2021-21864)
TALOS-2021
2021-01-20
Published